helpdesk
helpdesk copied to clipboard
jenkins-infra
Find a way to monitor jobs done from private controllers
There are some jobs we'd like to monitor like the Jenkins Core Docker image publication or Update Center jobs, but as they're done from private controllers like trusted.ci.jenkins.io where we can't install Datadog. We have to figure out a way to publish these jobs results in a public/accessible place so we could analyse them without being connected to trusted.ci.jenkins.io
It could be the creation of logs/report files in a bucket for example.
Why can't datadog be installed?
APM tools are generally very invasive and supposed to go everywhere
It's about the "invasive" part, but more about the data transmitted. The container logs are OK most of the time, but not the build logs / credentials for instance.
It's a way to limit the risks of "accidentally exporting" sensitive data
can't you turn that off in datadog config?
probably, but it means it's opt-out: ok for ci.jenkins.io and infra.ci, but not ok for trusted.ci or release.ci for instance
This says it's off by default: https://docs.datadoghq.com/integrations/jenkins/#datadog-agent-forwarding-using-environment-variables
This says it's off by default: https://docs.datadoghq.com/integrations/jenkins/#datadog-agent-forwarding-using-environment-variables
Thats for using the "Jenkins datadog plugin" -> "datadog agent forward" but not really for the "don't send build log/data, only keep the build status".
Related to / duplicate of https://github.com/jenkins-infra/helpdesk/issues/2488